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Copy protected digital data fc^. . ^ 

5 

The present invention relates to a copy protected digital data comprising the features 
of the preamble of independent claim 1 and to a recording medium comprising a 
copy protected digital data according to one of the claims 1 to 21. 

10 Furthermore, the present inventioti relates to a method of reproducing a copy 
protected digital data. 

Said digital data frequently is provided in the form of data files which are operable 
by an operating system of a reproducing apparatus, e.g. a personal conq)uter, a 
15 CD-player or a DVD-player. When digital data is stored into said reproducis^g 
apparatus, the operating system usually creates a data set alloca^ to the respective 
data file, the data set comprising information about the storing location, the size and 
the storing date of the data file. 

20 Illegal copies of digital data (e.g. music or video data, software, or databases) result 
in an extraordinary monetary damage both for the owner of the respective intellectual 
property and for the resellers and support providers. 

In this respect it has to be emphasised diat illegal copies of digital data are not only 
25 created by the organised crime but also by ordinary users of e.g. personal computers, 
CD writers or DVD writers. 

Making copies of digital data and providing them in a perfect quality becomes easier 
since copy possibilities increase and copying programmes become more comfortable. 
30 Furthermore, the prices for recording media are decreasing. 

Therefore, the providers of digital data are searching for solutions to prevent 
manufacture and distribution of illegally copied digital data. 

35 A first proposal to solve this problem is product activation which is frequently used 
with software products: 
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A software product using product activation automatically generates an individual 
product key based on a serial number of the product and a hardware identifier (e.g. 
the serial number of a processor used in a personal computer). 

5 This product key has to be send via the Internet or by telephone to a service centre 
which generates an activation key based on the product key and information stored in 
a central database provided at the service centre. 

To run the software product the activation key has to be input first. 

10 

If a software product using this prior art technology is copied to another personal 
computer, the activation key becomes invalid since the hardware identifier which was 
used as a basis to generate the individual product key necessarily has changed. In 
consequence, the activation key which was generated based on ttie individual product 

15 key does not longer apply. Thus, each time the software product is installed to a new 
personal computer or the hardware configuration is significantly changed, a separate 
activation procedure has to be performed to run the product. Since activation of a 
software product bearing a certain serial number is stored ui the central data base at 
the service centre, it can be reliably avoided that a software product bearing a certain 

20 serial number is activated more often then allowed by the corresponding license. 
Therefore, the use of illegal copies of the software product can be avoided. 

Another proposal to solve the above problem is disclosed in the US patent application 
no. 09/848,468 (publication no. US 2002/0164047 Al). 

25 

The system and method described therein bases on embedding and detecting a one-bit 
watermark in a digital content file. The digital watermark is a sequence that is 
embedded into digital content but is imperceptible when the content is played. A 
certificate associated with said digital watermark has to be provided to allow copying 

30 and playback of the digital content. The certificate contains copyright information 
that indicates permissible used of the digital content file, e.g. the number of times the 
digital content file may be reproduced. Usually, the certificate is stored in a central 
data base accessible via the Internet, for example. The watermark is virtually non- 
removable from the content, meaning that if the watermark is removed, the 

35 perceptual quality of the digital content is significantly altered. 



A ftirther prior art solution to solve the above problem is disclosed in the 
US application no. 09/847,813 (publication no. US 2002/0087883 Al>. 



The proposed process for preventing the privacy of application programs resident on 
a server and remotely accessed across a computer network by a client system in a 
computer environment conq)rises the steps of providing a network file system on said 
client, wherein said network file system handles and forwards all requests from local 
5 processes on the client that are directed at application program files located on said 
server. Said file system examines each of said requests and either grants or denies 
each of said requests depending on whether the request is justifiable from a security 
perspective by using information that includes the nature of the originating process^ 
the history of previous accesses by the process, and/or the section of the target file 
10 being requested. Furthermore, a network redirector conq)onent of said network file 
system is provided, wherein said network redirector component makes visible to said 
network file system a path that represents the server where said application program 
files are stored. 

15 According to a further prior art approach, a special hardware (e.g. "dongle") has to 
be attached to a personal conq[>uter to activate a software product. 

It is a disadvantage with the above described prior art solutions that they are very 
uncomfortable for a user since either a central database has to be accessed or a 
20 special hardware has to be provided. 



Therefore, it is the object of the present invention to provide copy protected digital 
data which combines a high level of copy protection and a high user frankness. It is a 
25 further object of the present invention to provide a method for reproducing said copy 
protected digital data. 

The above object is solved in a copy protected digital data comprising the features of 
30 the preamble of independent claim 1 by the features pf the characterising part of 
claim 1. 

Furthermore, the above object is solved by a method comprising the features of 
independent claim 23. 

35 

According to the present invention a copy protected digital data comprises a passive 
part comprising content to be protected in encrypted form, an active part comprising 
information how to decrypt the content comprised in die passive part and a hidden 
part, wherein die active part and die corresponding passive part constitute an active 
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content, the hidden part is allocated to the active content and/or the active part of the 
active content and/or the passive part of the active content, the hidden part 
comprising information about properties of the respective active content and/or 
respective active part and/or the respective passive part and the active part of the 
active content additionally comprises rules to allow and/or forbid decryption of the 
content comprised in the passive part of the active content based on the information 
comprised in the hidden part. 

Thus, the inventive copy protected digital data does riot prevent the copying of the 
digital data itself, but controls decryption of encrypted content comprised in said 
digital data. In consequence, reproduction of said copy protected digital data is 
limited. 

A hidden part of the copy protected digital data which is allocated to the active 
content is provided by the file system of each conventional operating system to allow 
addressing of the active content. Therefore, said hidden part meets the standards of 
die respective operating system. According to the present invention, propertijcs of the 
respective active content and/or the respective active and/or passive part of the copy 
protected digital data (e.g. storing location of the copy protected digital data, creation 
time of the copy protected digital data, time of last access / modification of copy 
protected digital data eto.) comprised in said hidden part are used for copy 
protection. Thus, no specialised hardware or central database has to been provided. 
No user iiq)Ut is necessary. In consequence, the inventive copy protected digital data 
is very user-firiendly. 

Furthermore, said hidden part usually is invisible for a user and thus hard to 
manipulate. Consequently, the inventive copy protected digital data provides a high 
level of copy protection. 

Advantageously the active part is adapted to read out the information CQmpris.ed in 
the respective hidden part, to compare said information with the rules and to perform 
or deny decryption of the content comprised in the passive part based on a 
comparison result. 

Since control of the copy protection provided by the copy protected digital data is 
performed by the active part only, no specialised software or hardware or operating 
system has to be provided. Furthermore, both the read out operation and the 
comparison operation are simple and consume very few processor time. 



Preferably, the active part of the active content is adapted to permanently deny 
decryption of the content comprised in the passive part of the active content if the 
information comprised in the hidden part does not comply with the rules of the active 
part. 

Thus, once a manipulation of the copy protected digital data is detected, the illegal 
copy can be made unusable. 

Since the copy protected digital data usually is adapted to be reproduced plural times 
it is preferred that the active part further conq>rises information how to encrypt the 
content comprised in tiie passive part. 

By encryptmg the content after reproduction by use of the active part, a manipulation 
of said encryption is hard to perform since no separate encryption meank ate used. 

According to a preferred embodiment of the present invention, based on a request to 
reproduce the content comprised in the passive part, the active part is further adapted 
to perform decoding and/or reproduction of decrypted content after decryption of the 
content comprised in the passive part. 

Thus, the reproduction of the copy protected digital data can be performed by itself. 
In consequeiKe, no separate player (which might be manipulated to overcome the 
cqpy protection) is needed. Moreover, user friendliness is ftirther enhanced. 

Preferably, the active part is adapted to con^Ietely load and delete the passive part, 
to decrypt and reproduce the content comprised in die loaded passive part, to encrypt 
the decrypted content after rqproduction and to store the encrypted content into a new 
passive part. 

In this respect, it is beneficial, if flie active part is. adapted to perform loading, 
deletion, decryption, encryption and storing of the content comprised in the passive 
part in real time during reproduction of the content conqirised in the passive part. 

Thus, at no time during a reproduction operation a complete data set of encrypted 
content is provided. Therefore, even during reproduction of the copy protected 
digital data a high level of copy protection is maintained. 

Advantageously, the active part is adapted to store the new passive part together with 
an adapted active part into a new active content. 



6 



By storing the new passive part into a new active content each time reproduction is 
perfonned, it is guaranteed in a very easy way tiiat a correspondingly amended 
hidden part automatically is generated by an operating system which is used to 
5 perform said reproduction under control of the active part. 

Favourably, tiie active part is adapted to automatically amend itself to build an 
amended active part each time decryption and/or encryption of the passive part is 
perfonned. 
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15 



Thus, as well the active content as weU tiie active part as well tiie passive part as well 
the hidden part of the copy protected digital data automatically can be amended each 
time reproduction of the copy protected digital data is performed. This makes it very 
hard to overcome the invMitive copy protection. 

It is profitable if tiie active part is a tanker resistant software to avoid manipulation 
of the active part. 

Preferentially, the rules comprised in the active part comprise information how often 
20 die content comprised in die passive part is allowed to be decrypted and how often 
die content comprised m the passive part has already been decrypted. 

Alternatively or additionally, flie rules comprised m the active part may comprise 
mfonnation how long die content comprised m die passive part is allowed to be 
25 decrypted. 

It is ftirther advantageous, if die rules comprised in die active part comprise 
infonnation how often die content comprised in die passive part is allowed to be lend 
and how often die content comprised in die passive part has already been lend. 



30 



As die active part and die passive part constitute an active content it is preferred diat 
said active content constitotes a unitary data file <^erable by an operating system. 

Furthennore. it is preferred diat based on a request to decrypt and/or playback die 
35 content comprised in die passive part, die active part is adapted to separate die 
passive part from die active content for decryption of the content comprised in die 
passive part. 
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^ Thus, the active part and the passive part can be operated separately by the operating 

system under control of the active part. 

Favourably, the hidden part automatically is allocated to the active content and/or the 
5 active part of the active content and/or the passive part of the active content by an 
operating system. 

Thus, e.g. the windows file system (NTFS) can be used to autonoatically generate the 
hidden part which is allocated to the active content and thus to both the active part 
10 and the passive part. 

It is preferred that the hidden part is stored in a system file (e.g. master table file) of 
an iterating system since such a system file is invisible for a user. 

15 Although the hidden part might be stored in decrypted form, for security reasons it is 
preferred to store the hidden part in encrypted form which might be envisaged by the 
respective operating system. 

Advantageoiisly, the hidden part further comprises information about the location of 
20 the active content and/or active part and/or passive part. 

According to a preferred embodiment of the present invention the information 
comprised in the hidden part automatically is changed by an operating system to 
build an amended hidden part each time the active content and/or the active part of 
25 die active content and/or the passive part of the active content and/or the content 
comprised in the passive part of the active content is read out and/or amended and/or 
stored. 

This is the standard with most operating systems. 

30 

Favoiurably, the encrypted content comprised in the passive part is digitised audio 
data and/or digitised video data and/or digitised picture date and/or a database and/or 
a software and/or digitised text. 



35 



The copy protected digital data according to one of the claims 1 to 21 preferably may 
be comprised in a recording medixun or in a consumer electronic device or in a 
personal computer capable of downloading digital data. 
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Furthermore, the above object is solved by a method of reproducing a copy protected 
digital data comprising 

- a passive part comprising content to be protected in encrypted form; 

- an active part comprising information how to decrypt the content comprised in the 
passive part; and 

- a hidden part; 
wherein 

the active part and the corresponding passive part constitute an active content, 
the hidden part is allocated to the active content and/or the active part of the active 
content and/or the passive part of the active content, the hidden part comprising 
mformation about properties of the respective active content and/or respective active 
part and/or flie respective passive part, and 

the active part of tiie active content further comprises rules to allow and/or forbid 
decryption of the content con^rised in the passive part of the active content based on 
the information comprised in the hidden part; 
the mediod comprising the following steps: 

- reading out the information con^rised in the hidden part of the copy protected 
digital data; 

• comparing said information with the mles comprised in the correspondmg active 

part of the active content; 
-denying decryption of the content comprised in the passive part of the active 

content if the information read out from the hidden part does not con^ly with the 

rules and terminating the method; 

- loading the encrypted content conq)rised in the passive part of the active content if 
the information read out from the hidden part complies with the rules; 

- performu^ decryption of tiie encrypted content; and 

- reproducing decrypted content. 

According to a preferred embodiment of the inventive method, the method further 
comprises the steps of deleting the passive part, encrypting the decrypted content 
after reproduction and storing the encrypted content into a new passive part. 

In this respect it is preferred that the step of reproducing the decrypted content, the 
step of deleting the passive part and the step of encrypting the decrypted content after 
reproduction are performed in real time during reproduction of the decrypted 
content. 

Favourably, the method further comprises the stsp of automatically amending the 
hidden part by control of an operating system to built an amended hidden part each 
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time the active content and/or the active part of the active content and/or the passive 
part of the active content and/or the content comprised in the passive part of the 
active content is read and/or amended and/or stored. 

5 Furthermore, it is beneficial if the method further comprises the steps of 
automatically amending the active part of the active content by control of the active 
part of the active content to build an amended active part each time decryption of the 
content comprised in the passive part is performed. 

10 Moreover, the above object is solved by a software product comprising a series of 
state elements which are adapted to be processed by a data processing means such, 
that a method according to one of the claims 23 to 27 may be executed thereon. 

15 In the following detailed description, fbe present invention is explained by reference 
to the accompanying drawings, in which like reference characters refer to like parts 
throughout the views, wherein: 

Fig. 1 shows a block diagram of a copy protected digital data 
20 according to a preferred embodunent of the present invention; 

Fig. 2 schematically shows a recording medium comprising the copy 
protected digital data of Fig! 1; 

25 Fig. 3 shows a block diagram to explain reproduction of the copy 

protected digital data according to the preferred embodiment 
of the present invention; and 

Fig. 4 shows a flow diagram of the inventive method for 
30 reproducing a copy protected digital data. 

Fig. 1 shows a block diagram of a preferred embodiment of copy protected digital 
data according to the present invention. 

35 

Said copy protected digital data comprises a passive part 2 and an active part 3. Both 
the active part 3 and the passive part 2 together constitute an active content 8 which 
is a data file operable by an operating system 9 of a data reproducing s^paratus. 
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In the present embodiment, the data reproducing apparatus is a personal computer 
(not shown) and the operating system 9 is a "NT File System" (also called "New 
Technology File System") NTFS which is running on the personal computer. The 
NTFS stores file relevant information (file properties) either as resident attributes in 
5 a "Master File Table" MFT or as non-resident attributes separately from Ihe MFT in 
runs or extends. It is well understood that alternatively any operating system other 
than the NTFS might be used. 

Alternately, the data reproducing apparatus might be for example a CD or DVD 
10 recorder or a digital video recorder or a MP3-player. In this case, the operatmg 
system would be the software of the respective controller or an embedded operatmg 
syst^. 

An encrypted digital content 1 is comprised in the passive part 2 of the active 
15 content 8. In the present embodiment, said content is a MP3 file comprising digitised 
audio data (music). 

Alternatively, said encrypted content 1 might be digitised video data, digitised 
picture data, digitised text data (e-book), a data base or a software. It is obvious that 
20 said content 1 even might be a mix of different kinds of digital or digitised data 
which might be provided in any known or fumre format e.g. MPEG. JPEG/BMP. 



etc.. 



Since the content 1 is comprised in the passive part 2 in encrypted form, it is not 
25 possible to read out or to reproduce the information conq)rised in the content 1 from 
the passive part 2 without decryption. Thus, the passive part 2 comprises the "raw- 
information and docs not comprise information how to read or reproduce said 
information. 

30 The active part 3 comprises information 4 how to decrypt the content 1 comprised in 
the passive part and information 4' how to encrypt decrypted content 1' received by 
decrypting the content 1 comprised in the passive part 2. 

Furthermore, the active part 2 comprises rules 5 to allow and/or forbid decryption of 
35 the content 1 comprised in the passive part 2 based on information 7 comprised m a 
hidden part 6 provided under control of a operating system 9. 

In the present embodiment, said roles 5 comprise internal information 5' how often 
the content 1 comprised in the passive part 2 is allowed to be decrypted and how 



11 

often the content 1 has ahready been decrypted by the active part 3, information 5" 
for which time period the content 1 is allowed to be decrypted and for which time 
period the content 1 has already been decrypted by the active part 3 and information 
5"* how often the content 1 is allowed to be lend and how often the content 1 has 
5 already been lend. The informations*" how often the content 1 comprised in the 
passive part 2 has ahready been lend can be received e.g. by logging the different 
hardware characteristics of the r^roducing apparatus the active content 8 has already 
been stored to. 

10 It is evident that fiirther rules and internal information (e.g. size, frequency of 
accesses of the passive part 2 etc.) to allow and/or forbid decryption of the content 
comprised in the passive part based on information comprised in a hidden part might 
be provided in the active part. 

15 Thus, the active part 3 compares the information 7 comprised in the hidden part 6 
with the internal information 5. 5', 5" etc. and decides based on the rules 5 by using 
the comparison result whether it is possible to decrypt the passive part 2 of the active 
content 8 or not. 

20 Moreover, the active part 3 is adapted to perform decoding and reproduction of 
decrypted content 1' which is generated by decryption of the content 1 comprised in 
ttie passive part 2. Thus, the active part 3 additionally knows how to play back the 
passive part 2. 

25 In the present embodiment, the active part 3 consequently comprises a player for 
MP3 files. Therefore, in addition to tibe active part 3 no additional software is 
required (except the operating system) to reproduce the information comprised in the 
passive part 2. However it is possible to have the player itself or part of it external to 
the active content. 

30 

To avoid a manipulation of the active part 3, the active part is provided as a tamper 
resistant software (see e.g. D. AUCSMITH "Tamper Resistant Software: an 
Implementation" and the essay "The Encoder Solution To Implementing Tamper 
Resistant Software" by J.R. NICKERSON, S.T. CHOW, H.J. JOHNSON, and 
35 Y. GU). 

In the present embodiment, the hidden part 6 is allocated to the active content 8 and 
thus to both the active part 3 and the passive part 2. 
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Alternatively, the hidden part might be allocated to the active part and/or the passive 
part, only. 



The information 7 comprised in the hidden part 6 relates to properties of the active 
content 8 and thus to properties of both the active part 3 and the respective passive 
part 2. In the present example, said properties comprise creation time of the active 
content 8, time of last modification or time of last access of the active content 8, 
storing location of the active content 8 and size of the active content 8. 

In the present embodhnent. the hidden part 6 is stored in the Master Table FUe 
MTF 10 of the NTFS operatmg system 9. Thus, the hidden part 6 is not directly 
attached to the active content 8 in a literal sense but stored with the system files of 
the operating system 9 onto a hard disc. 

It is obvious that said hidden part 6 alternatively might be stored in another suitable 
system file of the respective operating system or as a file extension together with the 
active content and/or active part and/or passive part. Further alternatively, the 
hidden part might be stored in runs of the active content comprising the active part 
and the passive part. 

Moreover, said system files of the operatmg system alternatively might be stored on 
an arbitrary portable votame, e.g. a changeable hard disc or a floppy disc. In case of 
a changeable hard disc or floppy disc said system file is e.g. a leading track 
con?>risujg the file structore of the respective votame. Thus, said file structure is not 
necessarily a physical part of the operating system, but has to comply with the 
requirements of the respective operatuig system, only. Furthermore, the hidden part 
stored m the file system has to be allocated to the respective active content and thus 
to the respective active part and/or passive part of the copy protected digital content. 
Moreover, the active part has to comprise information where the respective hidden 
part is located and how it is read out. 

« 

The hidden part is not directly visible to a user because to its relation to the operating 
system 9 and is written according to the standards of the respective operating 
system 9 (in the present embodiment the NTFS standard). 

Although the hidden part 6 might not be store m encrypted form, according to an 
alternative embodiment, the operating system automaticaUy encrypts the hidden part 
for security reasons (either separately or together with other sensible system files). 
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The above described copy protected digital data may be stored onto a recording 
medixim 11 as it is shown in Fig. 2. In the present exa^^)le, a DVD is shown. 
Altematively, the recording medium may be a hard disk, a CD or a floppy disk, for 
example. 

The active and passive part of the copy protected digital data are stored together as 
an uniform active content in the data storing area of the portable volume. The hidden 
part is stored either in the system file in the system file area of the portable volume, 
wherein the system file meets the standards of the operating system the portable 
volume is intended for, or as a file extension or runs together with the active content 
and/or active part and/or passive part in the data storing area of the portable volume. 
The active content and the hidden part might 'even be stored to different volumes 
provided there is a clear allocation between die hidden part and the respective active 
content which is recognised both by the operating system and die respective active 
part of the active content. 

In case of a read only portable volume which allows direct playback of the copy 
protected digital data, the information comprised in the hidden part and the 
corresponding rules comprised in the active pajrt are constant and permanently 
written onto the portable volume by a manu&cturer of the copy protected digital 
data. Since the information comprised in the rales of the active part of the active 
content can not be changed, said information and rules have to be chosen in a 
suitable way (e.g. decryption of passive part is allowed till a certain date). 

In case installation of the copy protected digital data from a first volume (e.g. a 
floppy disc, DVD or CD or the Internet) onto a second volume e.g. a hard disc is 
allowed by the rules comprised in the active part of the copy protected digital data, a 
new hidden part which is allocated to the active content and/or active part and/or 
passive part stored onto the second volume automatically is generated by the 
respective operating system. In line with the rules comprised in the active part stored 
onto the first volume and the corresponding information comprised in the hidden part 
stored onto the first volume, the roles and internal information comprised in the 
active part stored onto the second volume automatically are amended to correspond 
to the new hidden part under control of the active part stored onto the first volume. 

In this respect, if the first volume is a recordable volume, during or after installation 
of the copy protected digital data the active content and/or active part and/or passive 
part automatically might be amended under control of the active part stored onto the 
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first volume which necessarily results in a correspondmg amendment of the 
respective hidden part stored onto the first volume under control of the respective 
operating system. Alternatively, the active part might be adapted to actively amend 
the hidden part. 

Thus, it is guaranteed that each instaUation procedure is recognised by the inventive 
copy protected digital data and thus can be allowed or denied according to 
predetermined rules stored in the active part. 



In the followmg. the function of the above described copy protected digital data and a 
preferred method for reproducing the copy protected digital data are explained by 
reference to Figs. 3 and 4. 

In this preferred embodiment, the active part 3 is adapted to read out tiie 
information 7, T comprised in tiie hidden part 6 of the copy protected digital data. 
Said hidden part 6- is stored in tiie Master Table File 10 of tiie operating system 9. 
This reading operation is performed by tiie operating system 9 under control of ttie 
active part 3 in a first step SI. 

Furthermore, tiie active part 3 is adapted to compare said information 7, 7' witii tiie 
rules 5', 5" and 5' comprised in flie active part 3 in step S2. 

If tiie information 7. T does not conq)ly witii tiie rules 5*. 5" and S"* (e.g. tiie 
creation time or time of last modification of tiie active content 8 which is stored in 
tiie hidden file does not correspond to tiie creation time or time of last modification 
of tiie active content 8 stored as an mtemal mformation in tiie active part 3, 
respectively), it is supposed tiiat an illegal copy has been detected. In consequence, 
decryption of tiie content 1 comprised in tiie passive part 2 is denied by ttie active 
part 3 in step S3 and ttie metiiod for reproducing copy protected digital data is 
terminated. 

Alternatively, tiie illegal copy might be identified by a difference in storage location 
of tiie active content 8 or a difference in size of ttie active content 8, for exanq)le. 
Further alternatively, tiie number of diffierent reproducing apparatus tiie copy 
protected digital content can be instaUed to (corresponding to a maximum number of 
possible lends) might be exceeded. 
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If appropriate, the active part 3 additionally might be adapted to amended the passive 
part 2 in a way that a decryption of the content 1 comprised in the passive part 2 
becomes permanently impossible to permanently make the illegal copy unusable and 
thus to permanently deny decryption of the content 1 comprised in the passive part 2. 

5 

In case the information 7, 7' complies with the internal information stored in the 
active part 3 and thus meets rules 5\ 5'' and 5"', the active part 3 is further adapted 
to perform decryption of the content 1 comprised in the passive part 2. 

10 To perform said decryption it can be appropriate that the active part 3 is adapted to 
firstly completely load the active content 8 and to separate the passive part 2 and the 
active part 3 from the active content 8 based on a request to reproduce the content 1 
comprised in the passive part 2. 

15 In the following step S4 the active part 3 completely loads the encrypted content 1 
comprised in the passive part 2. 

Afterwards (step S5) the active part 3 decrypts the content 1 comprised in the passive 
parts 2 to build a decrypted content 1 ' by using the information 4 how to decrypt the 
20 content 1 which is stored in the active part 3. 

Following decryption, the decrypted content 1' is reproduced by the active part 3 in 
step S6. 

25 During the reproduction, a return (feedback) channel between a user and the active 
part 3 is provided which notifies the active part 3 about what a user did or wants to 
do. This return channel is necessary if e.g. a user wants to stop reproduction of the 
content 1 comprised in the passive part 2. In this case, the active part 3 has to decide 
based on his rules 5 whether the user is allowed to resume reproduction or to 

30 reproduce the conaplete content 1 once again. In this case, the original passive part 2 
would have to be reconstructed under control of the active part 3 or a new passive 
part 2* would have to be generated imder control of the active part 3. Preferably, the 
original name of the passive part is maintained. 

35 Since the reproduction of the inventive copy protected digital data is performed by 
itself, no separate player (which might be manipulated to overcome the copy 
protection) is needed and thus user friendliness is further enhanced. 
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Immediately after reproduction of a fraction of the decrypted content r. the active 
part 3 encrypts the decrypted content 1' in step SB by using information 4' stored in 
the active part 3. 

By encrypting the content immediately after reproduction under control of the active 
part 3, a manipulation of said encryption is hard to perform since no separate 
encryption means are needed. 

Said encrypted content 1 is stored in step S9 into a new passive part 2*. 

When performing steps S5, S6. S8 and S9, in the meantime tiie active part 3 deletes 
the passive part 2 in the parallel step S7. 

Thus, when reproduction is performed, flie loading, decryption, reproduction. 

5 encrj^ption and storing of the content 1 comprised in flie passive part 2 is performed 
m real time. Bits comprised in the passive part 2 which have been decrypted 
immediately are reproduced and immediately are encrypted after reproduction and 
stored mto a new data file as a new passive part 2*. Fractions of tiie passive part 2 
which have already been reproduced are deleted immediately after reproduction. In 

20 tiiis respect it is preferred tiiat flie original name of tiie passive part 2 is maintained. 

Since loading, deletion, decryption, encryption, and storing of the content 1 
comprised in tiie passive part 2 are performed in real time by the active part 3. at no 
time of tiie reproducing operation a completed data set of encrypted content 1* is 
25 provided. Therefore, even during reproduction of tiie copy protected digital data a 
high level of copy protection is m ain t ained. 

By storing flie reproduced and encrypted content 1 into a new passive part 2* (which 
might be comprised in a new or modified active content) each time reproduction is 

30 performed, tiie operating system 9 autoroaticaUy allocates a new / an amended hidden 
part 6* to the new passive part 2* (or tiie active content comprising tiie new passive 
part) in tiie following step SIC. Thus, tiie property information of tiie passive part 2, 
2* comprised in tiie hidden part 6* automatically is changed each time tiie content 1 
comprised in tiie passive part 2, 2* is reproduced. It has to be sti»ssed fliat tiie 

35 hidden part 6 alternatively might be amended under control of tiie active part 3 each 
time ttie passive part is read out or changed due to a reproducing or copying 
operation. 
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After completion of the reproducing operation, the active part 3 is adapted to 
automatically amend itself and to iqwiate the rules 5', 5" and 5'" to build an 
amended active part 3* comprising amended rules 5*', 5*" and 5*'" (in step SIX). 

To additionally enhance security of copy protection, even the information 4 how to 
decrypt the content 1 comprised in the passive part 2* and the infonnation 4' how to 
encrypt decrypted content 1 comprised in the passive part 2* may be modified under 
control of the active part 3, 3* each time reproduction is performed. 

In consequence, after reproduction the active content 8* is different from the active 
content 8 b^ore reproduction. To provide maximum security, as well the active 
part 3 as well the passive part 2 as well the hidden part 6 automatically are anu»ndfd 
afler reproduction each tune r^oduction of the copy protected digital data is 
performed. This mafces it veiy hard to overcome tbs invrative copy protection. 

It is evident that an amendment of the active part and/or the passive part and/or the 
hidden part requires that the respective part is stored onto recordable volume. 

Accordmg to a second embodiment which is not shown in the figures, the active part 
and the passive part do not constitote an active content and thus might be separate 
data files operable sqiarately by die respective operating system. Thus, the active 
part and the passive part do not necessarily have to be stored in physical vicmity to 
one anoOier. In this case, the active part comprises information where the passive 
part is located or receives said information from a file system of the operating 
system. 

It is well understood that alternatively tibe hidden part mi^t be amended by the 
operating system with or without control of the active part each time the active part 
and/or the passive part and/or the active content is read and/or amended and/or 
stored. Furthermore, it is obvious that the file system of the respective operating 
system where the hidden part is stored to might be the file system of a CD, DVD or 
floppy disc, for example. 

In summary, tbs present invention bases on the principle not to prevent copying of 
digital data itself but to control decryption of content comprised m said digital data 
and in consequence to allow or forbid the reproduction of a copy protected data file 
by using the properties of the file system of the respective operating system. 
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Normally, digital data cannot track how often it was copied of if it was moved from 
one location to another location. 

This is recognised as file properties by the file system of a respective operating 
5 system: 

A hidden part allocated to the copy protected digital data is provided by each 
conventional file system to allow addressing of the data. File system reader like the 
Windows Explorer are adapted to display some of said properties but do not allow 
10 modification of said information. The hidden part (which is invisible for a user) 
stores tiie properties of the copy protected digital data and provides tiiem to tiie 
active part. In tiiis respect, the hidden part preferably notices any slight modification 
of die active content and/or the active part and/or the passive part. 

15 Furthermore, said hidden part meets tiie standards of tiie respective operating system. 
Thus, no specialised hardware or central database has to been provided. No user 
input is necessary. In consequence, tiie inventive copy protected digital data is very 
user-friendly. Furthermore, said hidden part usually is mvisible for a user and thus 
hard to manipulate. Therefore tiie inventive copy protected digital data provides a 

20 highlevelof copy protection. 

The active part evaluates the properties provided by tiie hidden part and allows or 
denies reproduction of tiie passive part. Thus, tiie active part reacts on modifications 
noticed by tiie hidden part. Since control of tiw copy protection provided by tiie copy 
25 protected digital data is performed by tiie active part, only, no specialised software 
or hardware or opcratmg system has to be provided. Furthermore, botii die read out 
operation and the comparison operation are simple and consume very few processor 
time. 

30 Moreover, tiie above object is solved by a software product comprising a series of 
state elements which are adapted to be processed by a data processing means such, 
that the above described method may be executed thereon. 
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1 . Copy protected digital data coiiq)rising 

- a passive part (2) comprising content (1) to be protected in encrypted form; 

- an active part (3) comprising infomiation (4) how to decrypt the content (1) 

comprised in the passive part (2); and 
10 - a hidden part (6); 
wherein 

the active part (3) and the corresponding passive part (2) constitute an active 
content (8) and 

the hidden part (6) is allocated to the active content (8) and/or the active part (3) of 
15 the active content (8) and/or the passive part (2) of tibe active content (8), the hidden 
part (6) comprising information (7) about properties of the x'esqpective active 
content (8) and/or respective active part (3) and/or the respective passive part (2); 
charactmsed in that 

the active part (2) of the active content (8) additionally comprises rules (S) to allow 
20 and/or forbid decryption of the content (1) con^rised in the passive part (2) of the 
active content (8) based on the information (7) comprised in the hidden part (6). 

2. Copy protected digital data according to claim 1» 
characterised in that 

25 the active part (3) is adapted to 

- read out the information (7) comprised in the respective hidden part 

- compare said information (7) with the rules (5) and 

- perform or deny decryption of the content (1) coniprised in the passive part (2) 
based on a comparison result. 

30 

3. Copy protected diigital data according to claim 1 or 2, 
characterised In that 

the active part (3) of the active content (8) is adapted to permanentiy deny decryption 
of the content (1) comprised in the passive part (2) of the active content (8) if the 
35 information (7) comprised in the hidden part (6) does not comply with the rules (S) 
of the active part (3). 

4. Copy protected digital data according to claim 1,2 or 3, 
characterised in that 
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the active part (3) further comprises information (4') how to encrypt decrypted 
content (1'). 

5. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the active part (3) is further adapted to perform decoding and/or reproduction of 
decrypted content (1') after decryption of the content (1) comprised in the passive 
part (2). 

6. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the active part (3) is adapted to completely load and delete the passive part (2), to 
decrypt and reproduce the content (1) con^rised in die loaded passive part (2), to 
encrypt the decrypted content (!') after reproduction and to store the encrypted 
content (1) into a new passive part (2"'). 

7. Copy protected digital data according to claim 6, 
characterised in that 

die active part (3) is adapted to perform loadmg, deletion, decryption, encryption and 
storing of the content (1) comprised m tiie passive part (2) in real time during 
reproduction of the content (1) comprised in die passive part (2). 

8. Copy protected digital data according to claim 6 or 7, 
ctiaracterised in that 

the active part (3) is adapted to store the new passive part (2*) togedier witii an 
adapted active part (3) into a new active content (8*). 

9. Copy protected digital data accordmg to one of the preceding claims, 
characterised in that 

die active part (3) is adapted to automatically amend itself to buUd an amended active 
part (3*) each time decryption and/or encryption of tiie passive part (2) is performed. 

10. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the active part (3) is a tamper resistant software. 



11 . Copy protected digital data according to one of die preceding claims, 
characterised in that 
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^ the rules (5) comprised in the active part (3) comprise infomiation (5*) how often the 

content (1) comprised in the passive part (2) is allowed to be decrypted and how 
often the content (1) comprised in the passive part (2) has akeady been decrypted. 

5 12. Copy protected digital data according to one of the preceding claims » 
characterised in that 

the rules (5) comprised in the active part (3) comprise information (S") how long the 
content (1) comprised in the passive part (2) is allowed to be decrypted. 

10 13. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the roles (5) comprised in ihc active part (3) comprise information (5''*) how often 
the content (1) comprised in the passive part (2) is allowed to be lend and how often 
the content (1) comprised in the passive part (2) has already been lend. 

15 

14. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the active content (8) constitutes a data file operable by an operating system. 

20 IS . Copy protected digital data according to one of the preceding claims, 
characterised in that 

the active part (3) is adapted to separate the passive part (2) from the active 
content (8) for decryption of the content (1) comprised in the passive part (2). 

25 16. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the hidden part (6) automatically is allocated to the active content (8) and/or the 
active part (3) of the active content (8) and/or the passive part (2) of the active 
content (8) by an operating system (9). 

30 

17. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the hidden part (6) is stored in a system file (10) of an operating system (9). 

35 18. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the liidden part (6) is stored in encrypted form. 

19. Copy protected digital data according to one of the preceduig claims. 
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characterised in that 

the hidden part (6) further comprises infonnation (7') about the location of the active 
content (8) and/or the active part (3) of the active content (8) and/or passive part (2) 
of the active content (8). 

5 

20. Copy protected digital data according to one of the preceding claims, 
characterised in that 

the information (7. 7') comprised in the hidden part (6) automatically is changed by 
an operating system (9) to build an amended hidden part (6*) each time die active 
10 content (8) and/or tiie active part (3) of the active content (8) and/or die passive 
part (2) of die active content (8) and/or the content (1) comprised m die passive 
part (2) of die active content <8) is read out and/or amended and/or stored. 

21. Copy protected digital data according to one of die preceding claims, 

15 charactnised in that 

die encrypted content (1) comprised m die passive part (2) is digitised audio data 
and/or digitised video data and/or digitised picture date and /or a database and/or a 
software and/of digitised itu. ' ~~ 

20 22. Recording medium (11) or consumer electiwnic device or personal computer 
comprising copy protected digital data according to one of die preceding claims. 

23. Method of reproducing a copy protected digital data conxprising 

- a passive part (2) comprising content (1) to be protected hi encrypted form; 

25 -an active part (3) comprisuig information (4) how to decrypt die content (1) 
comprised in the passive part (2); and 

- a hidden part (6); 
wherein 

die active part (3) and die corresponding passive part (2) constitute an active 
30 content (8), 

die hidden part (6) is allocated to die active content (8) and/or die active part (3) of 
die active content (8) and/or die passive part (2) of die active content (8), die hidden 
part (6) comprising infonnation (7) about properties of die respective active 
content (8) and/or respective active part (3) and/or die respective passive part (2), 
35 and 

die active part (3) of die active content (8) fiirther comprises rules (5) to allow and/or 
forbid decryption of the content (1) comprised in die passive part (2) of die active 
content (8) based on the information (7) comprised in the hidden part (6); 
the method comprising the foUovidng steps: 
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V - (SI) reading out the information (7) comprised in the liidden part (6) of the copy 

protected digital data; 
• (S2) comparing said information (7) with the rules (5) comprised in the 
corresponding active part (3) of the active content (8); 
5 - (S3) denying decryption of the content (1) comprised in the passive part (2) of the 
active content (8) if the information (7) read out from the hidden part (6) does 
not comply with the rules (5) and terminating the method; 

- (84) loading the encrypted content (1) comprised in the passive part (2) of the 

active content (8) if the information (7) read out from the hidden part (6) 
10 complies with the rules (S); 

- (S5) perfoimmg decryption of the encrypted content (1); and 

- (S6) reproducing decrypted content (1 •). 



24. Method according to claim 23, \ 
15 characterised in that the method further comprises the steps of 

- (S7) deleting the passive part (2); 

- (S8) encrypting the decrypted content (1 •) after reproduction; and 

- (S9) storing the encrypted content (1) into a new passive part (2*). 

20 25. Method according to claim 24, 
characterised in fiiat 

the step (S6) of reproducing the decrypted content (!'), the step (ST) of deletmg the 
passive part (2) and the step (S8) of encrypting the decrypted content (1') after 
reproduction are performed in real time durixig reproduction of the decrypted 
25 content (1'). 

26. Method according to claim 23 24or 25, 
characterised in that the method further comprises the step of 

- (SIO) automatically amending the hidden part (6) by control of an operating 
30 system (9) to built an amended hidden part (6*) each time the active 

content (8) and/or the active part (3) of the active content (8) and/or the 
passive part (2) of the active content (8) and/or the content (1) comprised in 
the passive part (2; 2*) of the active content (8) is read and/or amended 
and/or stored. 

35 

27. Method according to claim 23, 24, 25 or 26, 
characterised in that the method ftirther comprises the step of 

- (Sll) automatically amending the active part (3) of the active content (8) by control 

of the active part (3) of the active content (8) to build an amended active 
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part (3*) each time decryption of the content (1) comprised in the passive 
part (2) is performed. 

28. Software product comprising a series of state elements which are adapted to be 
processed by a data processing means such, that a method accordmg to one of the 
claims 23 to 27 may be executed fliereon. 
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ABSTRACT 

5 

The present invention relates to digital data comprising a passive part (2) comprising 
content (1) to be protected in encrypted form, an active part (3) comprising 
information (4) how to decrypt the content (1) comprised in the passive part (2) and a 
hidden part (6), wherein the active part (3) and the corresponding passive part (2) 
10 constitute an active content (8) and the hidden part (6) is allocated to the active 
content (8) and/or the active part (3) of the active content (8) and/or the passive 
part (2) of the active content (8), the hidden part (6) comprising information (7) 
about properties of the respective active content (8) and/or respective active part (3) 
and/or the respective passive part (2). 

15 

With said digital data it is a disadvantage that prior art solutions to provide copy ' 
protection are very uncomfortable for a user since either a central database has to be 
accessed or a special hardware has to be provided. 

20 Therefore, it is the object of the present invention to provide copy protected digital 
data which uses combine a high level of copy protection and a high user frankness. It 
is a further object of the present invention to provide a method for reproducing said 
copy protected digital content. 

25 According to die present invention, the active part (2) of the active content (8) 
additionally comprises rules (5) to allow and/or forbid decryption of the content (1) 
comprised in the passive part (2) of the active content (8) based on the 
information (7) comprised in the hidden part (6). 

30 Since neither a central database has to be accessed nor a special hardware has to be 
provided, the above object is solved. 
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